If you are using a flashlight app on your Android phone, you might need to think twice about using it. A new email is making the rounds online claiming that flashlight apps are stealing user information and sending them to China, How-To Geek reports.
The warning comes around the same time cybersecurity company, SnoopWall published their own threat assessment report, where they said several flashlight apps have spyware or malware integrated into their systems designed to steal a user's contact list, location, phone number, and even the user's mobile banking data. The report and the company's recommendations were reported on Money Talk News.
Uninstall Flashlight App Immediately, Says SnoopWall
In their report, SnoopWall presented the top ten flashlight apps they believe to contain malware or spyware, and presented a chart that shows the kind of permissions that they ask a user prior to installation. How-To Geek says at least three of the ten apps presented potentially contain malware, but the rest only have sketchy permissions at worst.
Money Talk News quotes SnoopWall's recommendation regarding the matter, where the cybersecurity company has stated that users should uninstall their flashlight apps immediately. They do take this a step further though: "Because some of the flashlights apps write settings and have access to your device storage, it may be to install additional backdoors or remote access Trojans (RATs), therefore you might need to reset you phone completely after an uninstall of your favorite flashlight app. Some might even wish to go to factory reset or a wipe," SnoopWall's CEO Gary Miliefsky was quoted in Money Talk News' report.
Not a Reason for Panic - Yet
On the other hand, How-To Geek says people should not panic over the reports just yet. According to their feature, the panic over flashlight apps stealing people's information began last year, when Google Play Store's most popular flashlight app found itself in the middle of a FTC investigation for stealing users' geolocation data, which in turn was sold to advertisers.
How-To Geek points out that SnoopWall only presented the apps' permissions as their "proof" that these apps carry information-stealing malware or spyware. They also pointed out that a user "can't judge the security of an application by how big it is, and it is completely irresponsible for any security person to say that."
At the end of their feature, how-To Geek pointed out the main reason SnoopWall was making a big thing out of the flashlight app warning: They have their own flashlight application that they have to promote.
Users who suspect their flashlight apps may be stealing information from them are advised to uninstall the app immediately and report the incident to the FTC. Until then, people are advised to take the warnings against these apps with a grain of salt.
Join the Conversation